P
US10165010B2ActiveUtilityPatentIndex 61

Security compliance framework usage

Assignee: IBMPriority: Oct 3, 2016Filed: Nov 8, 2017Granted: Dec 25, 2018
Est. expiryOct 3, 2036(~10.3 yrs left)· nominal 20-yr term from priority
Inventors:HAMILTON II RICK AHINTON HEATHER MMOORE DARREN JToussaint Neil
H04L 63/20H04L 63/102H04L 63/08H04L 9/32H04L 63/00H05K 999/99
61
PatentIndex Score
1
Cited by
15
References
16
Claims

Abstract

A method and system for improving usage of a security compliance framework is provided. The method includes authenticating a user for: access to the security compliance frame work, access to an authoritative source component of the compliance framework, and access to a data store component of the compliance framework. A functionality status of the security compliance framework and a request associated with contents of the data store are presented to a user via a dashboard interface. In response, the request is triggered and associated results are generated.

Claims

exact text as granted — not AI-modified
What is claimed is: 
     
       1. A security compliance framework usage improvement method comprising:
 enforcing, by a processor of a hardware/software compliance framework, usage of an installed and deployed application programming interface (API) for security compliance in a dynamic deployment environment; 
 authenticating, by said processor executing said API, each dynamically deployed component of said hardware/software compliance framework; 
 managing, by said processor executing said API, access to each said dynamically deployed component; 
 logging, by said processor executing said API, results of: said enforcing, said authenticating, and said managing; 
 presenting, by said processor via a dashboard interface of said hardware/software compliance framework, a functionality status of said hardware/software compliance framework, wherein said functionality status allows said user to request associated reports and trigger associated actions associated with monitoring a performance of servers associated with said hardware/software compliance framework and resolving associated hardware and software performance issues; 
 triggering, by said processor based on said functionality status, said associated actions thereby executing said monitoring said performance of said servers and said resolving said associated hardware and software performance issues; 
 generating, by said processor, a request associated with contents of a data store of said hardware/software compliance framework; 
 presenting, by said processor executing said dashboard interface in response to said request, said contents of said data store; 
 triggering, by said processor in response to said presenting said contents, said request; and 
 generating, by said processor, results of said triggering said request. 
 
     
     
       2. The method of  claim 1 , wherein said dynamic deployment environment comprises a cloud environment. 
     
     
       3. The method of  claim 2 , wherein said cloud environment supports multi-tenant access. 
     
     
       4. The method of  claim 1 , wherein said API is configured to automatically prevent access by a user to each said dynamically deployed component of said hardware/software framework. 
     
     
       5. The method of  claim 1 , wherein said user is removed from said API. 
     
     
       6. The method of  claim 1 , further comprising:
 generating, by said processor, a secure profile for said user. 
 
     
     
       7. The method of  claim 1 , wherein said generating said request associated with contents of said data store comprises:
 authenticating said user with respect to said request; and 
 passing said request to said data store based on results of said authenticating said user with respect to said request. 
 
     
     
       8. A hardware/software framework comprising a hardware processor coupled to a computer-readable memory unit, said memory unit comprising instructions that when executed by the processor implements a compliance framework usage improvement method comprising:
 enforcing, by said hardware processor, usage of an installed and deployed application programming interface (API) for security compliance in a dynamic deployment environment; 
 authenticating, by said hardware processor executing said API, each dynamically deployed component of said hardware/software compliance framework; 
 managing, by said hardware processor executing said API, access to each said dynamically deployed component; 
 logging, by said hardware processor executing said API, results of: said enforcing, said authenticating, and said managing; 
 presenting, by said hardware processor via a dashboard interface of said hardware/software compliance framework, a functionality status of said hardware/software compliance framework, wherein said functionality status allows said user to request associated reports and trigger associated actions associated with monitoring a performance of servers associated with said hardware/software compliance framework and resolving associated hardware and software performance issues; 
 triggering, by said hardware processor based on said functionality status, said associated actions thereby executing said monitoring said performance of said servers and said resolving said associated hardware and software performance issues; 
 generating, by said hardware processor, a request associated with contents of a data store of said hardware/software compliance framework; 
 presenting, by said hardware processor executing said dashboard interface in response to said request, said contents of said data store; 
 triggering, by said hardware processor in response to said presenting said contents, said request; and 
 generating, by said hardware processor, results of said triggering said request. 
 
     
     
       9. The hardware/software framework of  claim 8 , wherein said generating said request associated with contents of said data store comprises:
 authenticating said user with respect to said request; and 
 passing said request to said data store based on results of said authenticating said user with respect to said request. 
 
     
     
       10. A computer program product, comprising a computer readable hardware storage device storing a computer readable program code, said computer readable program code comprising an algorithm that when executed by a processor of a hardware/software framework implements a security compliance framework usage improvement method, said method comprising:
 enforcing, by said processor, usage of an installed and deployed application programming interface (API) for security compliance in a dynamic deployment environment; 
 authenticating, by said processor executing said API, each dynamically deployed component of said hardware/software compliance framework; 
 managing, by said processor executing said API, access to each said dynamically deployed component; 
 logging, by said processor executing said API, results of: said enforcing, said authenticating, and said managing; 
 presenting, by said processor via a dashboard interface of said hardware/software compliance framework, a functionality status of said hardware/software compliance framework, wherein said functionality status allows said user to request associated reports and trigger associated actions associated with monitoring a performance of servers associated with said hardware/software compliance framework and resolving associated hardware and software performance issues; 
 triggering, by said processor based on said functionality status, said associated actions thereby executing said monitoring said performance of said servers and said resolving said associated hardware and software performance issues; 
 generating, by said processor, a request associated with contents of a data store of said hardware/software compliance framework; 
 presenting, by said processor executing said dashboard interface in response to said request, said contents of said data store; 
 triggering, by said processor in response to said presenting said contents, said request; and 
 generating, by said processor, results of said triggering said request. 
 
     
     
       11. The computer program product of  claim 10 , wherein said dynamic deployment environment comprises a cloud environment. 
     
     
       12. The computer program product of  claim 11 , wherein said cloud environment supports multi-tenant access. 
     
     
       13. The computer program product of  claim 10 , herein said API is configured to automatically prevent access by a user to each said dynamically deployed component of said hardware/software framework. 
     
     
       14. The computer program product of  claim 10 , wherein said user is removed from said API. 
     
     
       15. The computer program product of  claim 10 , wherein said method further comprises:
 generating, by said processor, a secure profile for said user. 
 
     
     
       16. The computer program product of  claim 10 , wherein said generating said request associated with contents of said data store comprises:
 authenticating said user with respect to said request; and 
 passing said request to said data store based on results of said authenticating said user with respect to said request.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.